codeql

mirror of https://github.com/github/codeql.git synced 2025-12-17 09:13:20 +01:00

Author	SHA1	Message	Date
Geoffrey White	e564c41043	Rust: Compute security-severity tag.	2025-03-06 18:36:55 +00:00
Geoffrey White	95be12ed80	Rust: Add qhelp and examples.	2025-03-06 17:48:47 +00:00
Geoffrey White	055baf2769	Rust: Improve results on arrays (less duplication).	2025-03-06 17:48:43 +00:00
Geoffrey White	aacbfc0fd8	Rust: Improve alert messages.	2025-03-06 17:48:41 +00:00
Geoffrey White	9fb00daeec	Rust: Implement the query (with one source, one sink model).	2025-03-06 17:48:39 +00:00
Geoffrey White	9a35febe80	Rust: Query framework and basic tests.	2025-03-06 13:24:05 +00:00
Tom Hvitved	b8dd2e551e	Merge pull request #18919 from hvitved/rust/ast-consistency-internal Rust: Move `AstConsistency.qll` into `internal`	2025-03-04 15:35:34 +01:00
Simon Friis Vindum	c89e648738	Rust: Exclude function without canonical path from model generation	2025-03-04 13:56:10 +01:00
Tom Hvitved	1f13f0009f	Rust: Move `AstConsistency.qll` into `internal`	2025-03-04 13:00:09 +01:00
github-actions[bot]	58f355ae5a	Post-release preparation for codeql-cli-2.20.6	2025-03-03 18:18:15 +00:00
github-actions[bot]	fa850cccb1	Release preparation for version 2.20.6	2025-03-03 17:13:19 +00:00
Simon Friis Vindum	cd49df0ff2	Merge pull request #18784 from paldepind/rust-generate-sources-sinks Rust: Generate sources and sinks	2025-02-20 15:59:58 +01:00
Simon Friis Vindum	ae7e15d82f	Merge pull request #18754 from paldepind/rust-ref-pattern Rust ref pattern	2025-02-19 14:24:09 +01:00
github-actions[bot]	ad24f94a77	Post-release preparation for codeql-cli-2.20.5	2025-02-17 17:58:24 +00:00
github-actions[bot]	6f4562f3bd	Release preparation for version 2.20.5	2025-02-17 16:55:54 +00:00
Simon Friis Vindum	a253b77894	Rust: Add clarifying comment	2025-02-17 14:14:30 +01:00
Simon Friis Vindum	632e0c82bd	Rust: Generate sources and sinks	2025-02-14 12:48:05 +01:00
Simon Friis Vindum	7476aeaabf	Rust: Handle `ref` patterns in data flow To do this we: * Let SSA writes target the name inside identifier patterns instead of the pattern itself * Include relevant names in the data flow graph * Add a store step from a identifier patterns with `ref` into the contained name. So we have an edge `ref a` -> `a` that stores in the reference content type.	2025-02-12 13:20:11 +01:00
Simon Friis Vindum	58d86fd2a9	Merge pull request #18714 from paldepind/rust-pointer Rust: Handle writes to references and add encoding of reference content	2025-02-11 14:12:56 +01:00
Tom Hvitved	614b3cea66	Merge pull request #18697 from hvitved/rust/telemetry Rust: Implement database quality telemetry query	2025-02-07 17:43:23 +01:00
Tom Hvitved	11bf4c831d	Update rust/ql/src/queries/telemetry/DatabaseQualityDiagnostics.ql Co-authored-by: Geoffrey White <40627776+geoffw0@users.noreply.github.com>	2025-02-07 13:55:11 +01:00
Simon Friis Vindum	11055760a4	Rust: Handle writes to references and add encoding of reference content	2025-02-07 13:53:17 +01:00
Tom Hvitved	aca70cd1ea	Merge pull request #18675 from hvitved/rust/struct-tuple-field Rust: Implement data flow through tuple structs	2025-02-06 19:17:53 +01:00
Tom Hvitved	89502d63e5	Rust: Implement database quality telemetry query	2025-02-06 10:46:48 +01:00
Remco Vermeulen	7619f1dac9	Merge pull request #18679 from rvermeulen/rvermeulen/ccr-suites Add CCR suites	2025-02-05 09:35:48 -08:00
Tom Hvitved	e4d9e29368	Rust: Implement data flow through tuple structs	2025-02-05 13:27:07 +01:00
Simon Friis Vindum	670ecb3298	Merge pull request #18673 from paldepind/rust-higher-order-function-model-generation Rust: Higher order function model generation	2025-02-05 09:15:46 +01:00
Remco Vermeulen	9894e9ef9f	Add CCR suites	2025-02-05 01:58:34 +00:00
Arthur Baars	2a32e8865d	Merge pull request #18668 from github/post-release-prep/codeql-cli-2.20.4 Post-release preparation for codeql-cli-2.20.4	2025-02-04 14:22:53 +01:00
Simon Friis Vindum	b0a3cdc68c	Rust: Generate flow summaries for higher-order functions	2025-02-04 14:03:19 +01:00
github-actions[bot]	f1b05a79a4	Post-release preparation for codeql-cli-2.20.4	2025-02-04 09:25:09 +00:00
Simon Friis Vindum	07413315a1	Rust: Address PR comments	2025-02-04 10:19:04 +01:00
Simon Friis Vindum	fc15c0d3b2	Merge branch 'main' into rust-flow-summary-generation	2025-02-04 10:10:33 +01:00
github-actions[bot]	573e53e454	Release preparation for version 2.20.4	2025-02-03 15:19:35 +00:00
Tom Hvitved	45fc1daa74	Rust: Hide internal implementation details from `DataFlow::Node`	2025-02-03 14:12:56 +01:00
Tom Hvitved	8eb5792f3b	Address review comments	2025-01-31 10:10:55 +01:00
Simon Friis Vindum	f76647fc00	Rust: Initial model generation setup	2025-01-30 11:45:21 +01:00
Geoffrey White	0a3d44c44e	Rust: Re-apply suggested changes (I accidentally force-pushed them away).	2025-01-24 17:31:38 +00:00
Geoffrey White	44b9a1188b	Rust: Another .qhelp fix.	2025-01-23 18:46:35 +00:00
Geoffrey White	d27a71eaaf	Rust: Minor fixes.	2025-01-23 18:21:27 +00:00
Geoffrey White	55705232f6	Update rust/ql/src/queries/security/CWE-312/CleartextLoggingBad.rs Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2025-01-23 18:18:05 +00:00
Geoffrey White	613a1656f3	Rust: Simplify QL slightly.	2025-01-23 18:13:59 +00:00
Geoffrey White	4214c837b8	Rust: Clean up the query message.	2025-01-23 18:03:25 +00:00
Geoffrey White	ccc124360e	Rust: Add .qhelp and examples.	2025-01-23 17:46:04 +00:00
Geoffrey White	e70816727b	Rust: Add the sinks to metrics.	2025-01-23 17:17:25 +00:00
Geoffrey White	59c3ac6f80	Rust: Allow flow through reference taking (&).	2025-01-23 17:17:07 +00:00
Geoffrey White	78c58aa5f1	Rust: Allow implicit taint reads from tuple contents at sinks.	2025-01-23 17:17:05 +00:00
Geoffrey White	4297d05c05	Rust: Implement the query.	2025-01-23 17:16:59 +00:00
Geoffrey White	bb3be2f8af	Rust: Add a test for the log crate + placeholder query.	2025-01-23 12:24:47 +00:00
github-actions[bot]	fbb7f0a0c6	Post-release preparation for codeql-cli-2.20.2	2025-01-20 21:11:14 +00:00

... 3 4 5 6 7 ...

407 Commits